Hello John,
Sunday, November 19, 2000, 8:51:23 PM, you wrote:
JS> I've setup port forwarding on my RH 6.1 box. External machines can see our
JS> web site without problems. What line do I need add to allow internal
JS> machines to access http://209.81.168.103 ? The internal machines can ping
JS> 209.81.168.103, but their browsers report "The page cannot be displayed"
JS> Applicable portions of our rc.firewall follow:
JS> /sbin/ipchains -P forward DENY
JS> /sbin/ipchains -A forward -i eth0 -j MASQ
JS> /usr/sbin/ipmasqadm portfw -a -P tcp -L 209.81.168.103 80 -R 192.168.35.34
JS> 80
JS> In reading the archives, several people have pointed to a technique to do
JS> this, but I haven't seen any actual command line instructions. That is what
JS> I need since I can't figure it out from the naritive descriptions.
JS> TIA.
JS> _______________________________________________
JS> Redhat-list mailing list
JS> [EMAIL PROTECTED]
JS> https://listman.redhat.com/mailman/listinfo/redhat-list
Try this (w/o quotes of course):
Get rid of the line " /sbin/ipchains -A forward -i eth0 -j MASQ "
and replace with:
" ipchains -A forward -i 209.81.168.103 -s 192.168.35.0 -j MASQ "
the rest looks ok, except that I personally use:
"ipchains -P forward REJECT" instead of DENY
--
Best regards,
badger mailto:[EMAIL PROTECTED]
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
